Summary
Requesting the URI /.perf gives information about
the currently running Netscape/iPlanet web server.
Solution
If you don't use this feature, server monitoring should be disabled in the magnus.conf file or web server admin.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Apache Tomcat HTTP NIO Denial Of Service Vulnerability (Windows)
- IBM WebSphere Application Server Hash Collisions DOS Vulnerability
- Apache Tomcat Hash Collision Denial Of Service Vulnerability
- Apache HTTP Server 'mod_dav_svn' Denial of Service Vulnerability (Windows)
- Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability